5-20 Oracle Fusion Middleware Interoperability Guide for Oracle Web Services Manager
5.6 Kerberos with Message Protection
This section describes how to implement kerberos with message protection in the following interoperability scenarios:
■
Configuration Prerequisites for Interoperability on page 5-20
■
Configuring Microsoft WCF.NET 3.5 Client and Oracle WSM 11g Web Service on page 5-20
5.6.1 Configuration Prerequisites for Interoperability
Perform the following prerequisite steps:
1.
Configure the Key Distribution Center KDC and Active Directory AD. For more information, see the section To Configure Windows Active Directory and
Domain Controller the domain controller can serve as KDC at http:docs.sun.comappdocsdoc820-3746gisgm?l=ena=view
.
2.
Set up the Kerberos configuration file krb5.conf in c:\winnt as shown in Example 5–1
.
Example 5–1 Sample Kerberos Configuration File
[logging] default = c:\log\krb5libs.log
kdc = c:\log\krb5kdc.log admin_server = c:\log\kadmind.log
[libdefaults] default_realm = MYCOMPANY.LOCAL
dns_lookup_realm = false dns_lookup_kdc = false
default_tkt_enctypes = rc4-hmac default_tgs_enctypes = rc4-hmac
permitted_enctypes = rc4-hmac kdc = hostname
[realms] MYCOMPANY.LOCAL =
{ kdc = hostname:portnumber admin_server = hostname:portnumber default_domain = domainname
} [domain_realm]
.domainname = MYCOMPANY.LOCAL domainname = MYCOMPANY.LOCAL
[appdefaults] pam =
{ debug = false ticket_lifetime = 36000 renew_lifetime = 36000 forwardable = true krb4_convert = false }
5.6.2 Configuring Microsoft WCF.NET 3.5 Client and Oracle WSM 11g Web Service
To configure Microsoft WCF.NET 3.5 client and Oracle WSM 11g Web service, perform the steps described in the following sections:
5.6.2.1 Configuring Oracle WSM 11g Web Service
1.
Create a Web service application.
2.
Copy the following policy: wss11_kerberos_with_message_protection_service_ policy.
Interoperability with Microsoft WCF.NET 3.5 Security Environments 5-21
3.
Edit the policy settings to set Algorithm Suite to Basic128Rsa15.
4.
Attach the policy to the web service. For more information about attaching the policy at deployment time using Fusion Middleware Control, see Attaching
Policies to Web Service Clients in Oracle Fusion Middleware Security and Administrators Guide for Web Services.
5.
Deploy the application.
5.6.2.2 Configuring Microsoft WCF.NET 3.5 Client